Received: by 2002:a05:6902:102b:0:0:0:0 with SMTP id x11csp586830ybt; Wed, 1 Jul 2020 05:43:10 -0700 (PDT) X-Google-Smtp-Source: ABdhPJyBeni4r6gZJY3Ls5ChGdwYJn6Hb0XBymdRDjgG80us3mwnMjhAr3cC3DNI5azaqT2xtTWH X-Received: by 2002:a17:906:2a5b:: with SMTP id k27mr22048489eje.82.1593607390847; Wed, 01 Jul 2020 05:43:10 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1593607390; cv=none; d=google.com; s=arc-20160816; b=kypcLLoGfPj7v0fO0p299Lac0MFOo4jr5wePzbY2b+hoSffkFMClVX+uyogpxbqS2F QYOZgLIiY3Ukt3i4tTfhWe5ReTbm8WroewDpIXUiLO8qTwnSE+YWkgqMsM3aibu5vFiC Bh1gEKUpCwBdqn25FOgxaNiQG/x1TixAqQDHaygesB0AIjGIgIjNhLI5Nfql3661oVk8 tjc61E7Z5klffRhJUB79H8MkISd+0oZy+6T9rwm2+AyftW1ST9VIzIsSCu+T2/s/WZ3I svi73ThwZHar5GnnalZmSXGAYUhIaBps8+lLk9I+YG1Sa30oywFMalp5M1mln0a20Z5J 3QMw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:in-reply-to:content-disposition :mime-version:references:message-id:subject:cc:to:from:date :dkim-signature; bh=/dBVnFe+0QbEb6oba4YxfBL/Fq4QYPfJyj1Q8/l0EI0=; b=avvgqgrL/h5UzMSe2NHfRH3s1qhRNQWKJe0rA1lkFt7nJUhYY7VCI4hFO84cozPd2c RtrUlcqTGUVUttyYa9eav4ZHN5XWb+iS9lOrWL49HNqpZDnbJLnF4U3j/hONID6zhNVd 4uvcnqz/n8BaMJQbohfFjqsR0TnNm4sGjeCTadf5eeXa2hrmzvAOPagCW0BcWU8ck4fh dpnjAB832AYo43QAqOWsMT69DOnqSgHWIQICwuw4l0vpjU0Lk+E8G8xN85WHUah2K6Xk TueP7tGZfZd0cube0TPl0Etuk2DCAcvPLZTCJw7hVXv/BFj/0SzLDl61JWvJPVoH9rIi 9gsw== ARC-Authentication-Results: i=1; mx.google.com; dkim=fail header.i=@infradead.org header.s=casper.20170209 header.b=J0ayZmG8; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id ov7si3769978ejb.224.2020.07.01.05.42.47; Wed, 01 Jul 2020 05:43:10 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=fail header.i=@infradead.org header.s=casper.20170209 header.b=J0ayZmG8; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1730563AbgGAMmm (ORCPT + 99 others); Wed, 1 Jul 2020 08:42:42 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:34110 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1729959AbgGAMmm (ORCPT ); Wed, 1 Jul 2020 08:42:42 -0400 Received: from casper.infradead.org (casper.infradead.org [IPv6:2001:8b0:10b:1236::1]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id A7DACC03E979; Wed, 1 Jul 2020 05:42:41 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=infradead.org; s=casper.20170209; h=In-Reply-To:Content-Type:MIME-Version: References:Message-ID:Subject:Cc:To:From:Date:Sender:Reply-To: Content-Transfer-Encoding:Content-ID:Content-Description; bh=/dBVnFe+0QbEb6oba4YxfBL/Fq4QYPfJyj1Q8/l0EI0=; b=J0ayZmG8Qv9RcfSsyxVjvwBPQh V2TSpZLiMlRjg2s9xAs+n+CxXyqz+wRIa71U1vpUYcnXMeO0H7cgq2jO7DA6KjZD6Ose8rclQ0JGK BH2D9euaP50Mi1cpumhmLtAHw6cVQ2uXayDfNIxmBbQ+TJUK6Pj6CKISj2G+z+Oyg0+vjPXtQxz0P TfQaIG5+hhpvBbuT6IlEYMhnSTx2dp2uQ0FtDVBPsY41IfVTlf39V9wOmfB8YSe43AHQq3fluIYd1 K/yXbABV6PYzPvj9RRQImmCH70W7JpYIWfuj4fSj9CNI8BPaRnrrGNugemMUuK2XAb4GvZFO+Wwgc 2ttWXRfQ==; Received: from hch by casper.infradead.org with local (Exim 4.92.3 #3 (Red Hat Linux)) id 1jqc41-0003HK-2U; Wed, 01 Jul 2020 12:42:09 +0000 Date: Wed, 1 Jul 2020 13:42:09 +0100 From: Christoph Hellwig To: Giovanni Cabiddu Cc: alex.williamson@redhat.com, herbert@gondor.apana.org.au, cohuck@redhat.com, nhorman@redhat.com, vdronov@redhat.com, bhelgaas@google.com, mark.a.chambers@intel.com, gordon.mcfadden@intel.com, ahsan.atta@intel.com, qat-linux@intel.com, kvm@vger.kernel.org, linux-crypto@vger.kernel.org, linux-pci@vger.kernel.org, linux-kernel@vger.kernel.org Subject: Re: [PATCH 0/5] vfio/pci: add blocklist and disable qat Message-ID: <20200701124209.GA12512@infradead.org> References: <20200701110302.75199-1-giovanni.cabiddu@intel.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20200701110302.75199-1-giovanni.cabiddu@intel.com> X-SRS-Rewrite: SMTP reverse-path rewritten from by casper.infradead.org. See http://www.infradead.org/rpr.html Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Wed, Jul 01, 2020 at 12:02:57PM +0100, Giovanni Cabiddu wrote: > This patchset defines a blocklist of devices in the vfio-pci module and adds > the current generation of Intel(R) QuickAssist devices to it as they are > not designed to run in an untrusted environment. How can they not be safe? If any device is not safe to assign the whole vfio concept has major issues that we need to fix for real instead of coming up with quirk lists for specific IDs.